$ rpki-client -vvf repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft File: 41820333252DF92B1DBA238F558CC8D822C768EF.mft (raw, json) Hash identifier: O0w8gwLr/psb3E8K7WXmgwsEH5jXlCuAwEqtglbgqlA= Subject key identifier: AB:C8:AA:A3:F3:B6:75:C3:28:CB:79:A5:64:0D:A4:0B:AC:6E:53:91 Authority key identifier: 41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF Certificate issuer: /CN=41820333252DF92B1DBA238F558CC8D822C768EF Certificate serial: 6BB59127EEF62440D812E9DAB8FF971D2DD793D4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft Manifest number: 01B3 Signing time: Sun 19 Oct 2025 06:21:12 +0000 Manifest this update: Sun 19 Oct 2025 06:16:12 +0000 Manifest next update: Wed 22 Oct 2025 14:28:12 +0000 Files and hashes: 1: 3130332e36392e36312e302f32342d3234203d3e20313530353239.roa (hash: eG3L50RlSnDUuOVwkVlYnQebEQc3JXkDObYN4u0w6z8=) 2: 3130332e36392e36302e302f32342d3234203d3e20313530353239.roa (hash: Y9d4RL5lwPJKIYYz/S5GmByBdyf8v8c66+665Lm4cNc=) 3: 41820333252DF92B1DBA238F558CC8D822C768EF.crl (hash: /vBER+X83VFCPLjqk8WOPgxKXZmXwzSyVOvBNRTPD1I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 14:28:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:b5:91:27:ee:f6:24:40:d8:12:e9:da:b8:ff:97:1d:2d:d7:93:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41820333252DF92B1DBA238F558CC8D822C768EF Validity Not Before: Oct 19 06:16:12 2025 GMT Not After : Oct 22 14:28:12 2025 GMT Subject: CN=ABC8AAA3F3B675C328CB79A5640DA40BAC6E5391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d1:71:3e:ab:a4:9c:94:b0:93:6a:be:b9:27: 4f:7a:23:f9:db:a9:78:1c:d3:5a:c4:8d:40:05:8e: 38:bb:25:d1:eb:c8:a8:fe:ac:9b:98:30:f2:2f:0e: a8:ab:e2:18:a5:da:10:ac:15:4f:2c:98:61:cd:10: e0:27:c6:8a:95:97:ef:50:00:54:92:f6:9e:6c:68: 1b:6a:2b:61:ae:97:6c:19:17:b6:6e:52:51:65:f9: 76:0f:68:3e:fa:39:38:ea:93:af:6b:f2:f8:8c:a0: 5b:3d:c6:06:c0:e5:36:bd:81:32:f7:d0:eb:11:3c: c8:7c:cf:49:a8:50:24:ec:18:85:8e:be:d3:24:58: 84:c9:fb:1b:b1:f5:71:98:5d:15:d0:90:a8:4b:69: 74:19:0e:9c:f1:3c:04:c8:8b:fe:cf:ab:5b:ac:9d: 86:09:68:5c:59:3d:e3:12:d0:bf:db:fc:31:08:79: 23:30:95:5c:ba:fc:c1:14:60:5b:33:2b:f9:40:28: 74:54:70:9a:e9:b6:75:1b:d5:e9:b2:7e:04:33:3f: 72:8e:e4:5e:5c:0a:be:f1:e7:16:13:99:0b:d4:25: cd:06:3f:6e:4e:a3:45:25:a5:9c:69:0c:30:3b:7d: d0:16:2c:b1:3e:b1:cd:d4:31:f4:b9:8d:9f:87:ea: 52:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C8:AA:A3:F3:B6:75:C3:28:CB:79:A5:64:0D:A4:0B:AC:6E:53:91 X509v3 Authority Key Identifier: keyid:41:82:03:33:25:2D:F9:2B:1D:BA:23:8F:55:8C:C8:D8:22:C7:68:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41820333252DF92B1DBA238F558CC8D822C768EF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85971ae9-5cdd-4d41-b62a-5c284aa8098e/0/41820333252DF92B1DBA238F558CC8D822C768EF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:cc:ff:4b:7d:4b:b1:51:8c:15:71:82:de:34:cd:70:c9:83: 4d:76:ac:e0:e6:28:f4:1d:bb:f8:39:9e:2d:29:64:a6:b9:ed: 84:ff:98:7b:40:7a:fb:28:5d:ac:b6:6d:a2:ca:c0:ab:75:e1: a9:58:51:60:fc:c3:b4:92:67:57:ec:48:18:aa:49:6b:1a:06: 29:43:99:c8:c5:42:87:ff:2d:ea:a4:42:5c:53:df:86:61:6f: 23:19:92:30:2d:7f:8b:9e:8f:25:ba:f9:ff:e2:49:f6:44:09: 9f:77:24:3a:85:f3:1d:15:52:0e:ac:45:c2:64:d5:ff:08:7d: d8:96:14:9f:59:7b:83:b5:80:cc:0d:9e:1f:6b:b7:fe:fb:6a: 5a:81:5a:c6:3b:eb:41:37:d5:53:a2:0e:30:cf:5e:0b:d4:8d: 71:8f:42:7c:39:da:bd:99:74:58:c4:cc:54:ab:3a:ae:34:eb: df:2d:9b:17:80:39:53:9a:0f:55:1b:5a:28:0b:c0:fe:b8:db: 06:00:5e:a5:4c:50:5a:d4:2f:a6:8e:bb:03:6d:45:01:10:f5: 6a:58:73:1e:2c:ea:df:5e:04:4a:37:1e:02:e6:c6:88:29:07: 55:1e:6f:37:8d:16:9c:9d:bf:58:db:4b:a3:e9:3c:81:9c:73: 00:73:bb:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUa7WRJ+72JEDYEunauP+XHS3Xk9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgy MkM3NjhFRjAeFw0yNTEwMTkwNjE2MTJaFw0yNTEwMjIxNDI4MTJaMDMxMTAvBgNV BAMTKEFCQzhBQUEzRjNCNjc1QzMyOENCNzlBNTY0MERBNDBCQUM2RTUzOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY0XE+q6SclLCTar65J096I/nb qXgc01rEjUAFjji7JdHryKj+rJuYMPIvDqir4hil2hCsFU8smGHNEOAnxoqVl+9Q AFSS9p5saBtqK2Gul2wZF7ZuUlFl+XYPaD76OTjqk69r8viMoFs9xgbA5Ta9gTL3 0OsRPMh8z0moUCTsGIWOvtMkWITJ+xux9XGYXRXQkKhLaXQZDpzxPATIi/7Pq1us nYYJaFxZPeMS0L/b/DEIeSMwlVy6/MEUYFszK/lAKHRUcJrptnUb1emyfgQzP3KO 5F5cCr7x5xYTmQvUJc0GP25Oo0UlpZxpDDA7fdAWLLE+sc3UMfS5jZ+H6lJDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUq8iqo/O2dcMoy3mlZA2kC6xuU5EwHwYDVR0j BBgwFoAUQYIDMyUt+SsduiOPVYzI2CLHaO8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NTk3MWFlOS01Y2RkLTRkNDEtYjYyYS01YzI4NGFhODA5OGUvMC80MTgyMDMzMzI1 MkRGOTJCMURCQTIzOEY1NThDQzhEODIyQzc2OEVGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4RDgyMkM3 NjhFRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODU5NzFhZTktNWNkZC00ZDQxLWI2 MmEtNWMyODRhYTgwOThlLzAvNDE4MjAzMzMyNTJERjkyQjFEQkEyMzhGNTU4Q0M4 RDgyMkM3NjhFRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABnM/0t9S7FRjBVxgt40zXDJg012rODmKPQd u/g5ni0pZKa57YT/mHtAevsoXay2baLKwKt14alYUWD8w7SSZ1fsSBiqSWsaBilD mcjFQof/LeqkQlxT34ZhbyMZkjAtf4uejyW6+f/iSfZECZ93JDqF8x0VUg6sRcJk 1f8IfdiWFJ9Ze4O1gMwNnh9rt/77alqBWsY760E31VOiDjDPXgvUjXGPQnw52r2Z dFjEzFSrOq40698tmxeAOVOaD1UbWigLwP642wYAXqVMUFrUL6aOuwNtRQEQ9WpY cx4s6t9eBEo3HgLmxogpB1UebzeNFpydv1jbS6PpPIGccwBzu+g= -----END CERTIFICATE-----Generated at Mon Oct 20 16:28:01 2025 by rpki-client